Projects tagged ‘java’ and ‘security’

A comprehensive security module for The Spring Framework. Delivers authentication, authorization, security interception, and run-as authentication replacement. Extensive use of well-targeted interfaces facilitate easy customisation by developers.

The Open Web SSO project provides core identity services to simplify the implementation of transparent single sign-on as a security component in a network infrastructure. It provides the foundation for integrating diverse web applications that might ... [More] typically operate against a disparate set of identity repositories and are hosted on a variety of platforms such as web and application servers. [Less]

Here at the Bouncy Castle, we believe in encryption. That's something that's near and dear to our hearts. We believe so strongly in encryption, that we've gone to the effort to provide some for everybody.

Umbrella project for integrations of Wicket and other projects such as Jasper Reports, Hibernate, Freemarker. Also a home for small community contributions.

Centreon is a network, system, applicative supervision and monitoring tool, it is based upon the most effective Open Source monitoring engine : Nagios. Centreon provides a new frontend and new functionnalities to Nagios. It allows you to be more ... [More] efficient in your network monitoring, but also allows you to make your supervision information readable by a largest range of users. Indeed, a non technical user can now use the Centreon/Nagios couple to easily understand your network infrastructure thanks to charts and graphical representations of the gathered information. Skilled users still have access to specific and technical information collected by Nagios though. [Less]

DWR allows Javascript in a browser to interact with Java on a server and helps you manipulate web pages with the results.

OpenSAML 2.0 is in development, and will include support for the SAML 2.0 standard, as well as legacy support for SAML 1.1 and 1.0. The redesigned library includes a superset of the functionality in earlier versions, but will NOT be API-compatible with them.

WSO2 Identity Solution will provide the following components to enable CardSpace authentication. The Set of Components 1. A set of Relying Party components Relying party components will include an Apache HTTPD module and a Servlet ... [More] filter. The HTTPD module can be used with any Web application that is hosted with Apache HTTPD irrespective of the implementation language. The Servlet filter component is intended for Java based Web containers. 2. An Identity Provider This is the security token service that one can deploy to issue tokens to trusted users of a web application. The CardSpace identity selector will obtain tokens from the Identity Provider and authenticate the users to the Web applications with those tokens. [Less]

SSHTools is a suite of Java SSH applications providing a Java SSH API, SSH Terminal, SSH secured VNC client, SFTP client and SSH Daemon.

The JXSE project is a complete reference implementation of the JXTA protocols built using Java Standard Edition 5.0. The JXSE project was the original JXTA implementation and was built in Java because Java enabled us to rapidly prototype and test new ... [More] ideas and develop a more robust implementation. Java is available for most operating systems (Solaris, Unix, Windows, MacOS, etc.) and allows us to reach the maximum number of potential users. [Less]

[fleXive] is a Java EE 5 open-source (LGPL) framework for the development of complex and evolving (web-)applications. It speeds up development by easing many tedious and repetitive programming tasks. [fleXive] concentrates on enterprise-scale ... [More] content modeling, storage and retrieval, and includes comprehensive JSF support for displaying and manipulating these contents in (web) applications. The runtime environment can be included in existing Java EE applications, but you can also build new applications and package them into stand-alone Java EE applications. [fleXive] provides essential features for data-centric applications: * Secure EJB-based persistence engine * Web development JSF toolkit * Powerful (GPL) administration interfaces * Based on Java 6, EJB 3, JSF, MySQL [Less]

The Enterprise Sign On Engine (ESOE) is an advanced system which allows an enterprise to meet it's individual goals for integrated identity management, single sign on, authorization, federation and accountability for resource access in a very ... [More] extensible manner. The ESOE is built using the OASIS SAML 2.0 specification, and the ESOE's powerful authorization engine is built around a reduced version of the OASIS XACML 2.0 standard which we have called Lightweight eXtensible Authorization Control Markup Language or "LXACML". The ESOE can integrate identity from unlimited repositories, automatically create sessions for users whom are logged into Active Directory (true single sign on), provide for centralized authorization policy management and natively federate with technologies such as Shibbo [Less]

JSecurity is a powerful and flexible open-source Java security framework that cleanly handles authentication, authorization, enterprise session management and cryptography. Our mission: To provide the most robust and comprehensive Java security framework available while also being very easy to understand and extremely simple to use.

Shibboleth is standards-based, open source middleware software which provides Web Single SignOn (SSO) across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.

Apache WSS4J is an implementation of the OASIS Web services Security (WS-Security) specification in Java. It is primarily a Java library that can be used to sign and verify SOAP Messages with WS-Security information. Apache WSS4J can be used for ... [More] securing Web services deployed in virtually any application server, but it includes special support for Apache Axis. [Less]

Jasypt is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort, and without the need of having deep knowledge on how cryptography works.

jEnkryptor is a Java swing based, multi-threaded cross-platform encryption application.

The Recommendation Tracker facilitates consistent guidance authoring through an established standardized format for creating, developing, and tracking all information pertinent to security guide and benchmark generation. The Recommendation Tracker ... [More] is a crucial component to the tool suite used in the development and maintenance of new Benchmarks and is seen as a mechanism to facilitate consistent standards-based guidance development. [Less]

A security static analysis tool for C aiming to answer the question: "what does this program do?"

tcpfile is a filetransfer / filesharing / instant messaging java(1.6) program offering zipped and fully encrypted (RSA,AES) communication.

jGuard is written in java. his goal is to provide a security framework based on jaas (java authentication and authorization security) . this framework is written for web and standalone applications, to resolve simply, access control problems.

WebAppSecurity is a Servlet Filter framework that allows an easy declarative manner to create security rules for a web application. This includes limiting the number of transactions a user can make, preventing brute force password cracking, and XSS attacks. WebAppSecurity is designed to protect Websites and WebServices.

The SOBF tool is a risk assessment tool. It can be used to manage the security risks of an environment, to maintain assets and control countermeasures. It is possible to export graphical reports from the SOBF tool which can be used in presentations and regularly compiled statements.

Odyssi PKI aims to be a complete PKI suite written in Java, and designed from the ground up with security in mind. When completed, it will be fully standards compliant with PKIX, XKMS, OCSP, and other PKI standards.

Little java app to securely store accounts passwords in an encrypted file. You can classify your accounts in categories, and each account has fields for the account's URL, username, password, and additional notes. Can also export the passwords database to an XML file.

Java Web Application Security Framework to solve web application vulnerabilities HDIV extends web applications’ behaviour by adding Security functionalities, maintaining the API and the framework specification. This implies that we can use HDIV ... [More] in applications developed in Struts 1.x, Struts 2.x, Spring MVC and JSTL in a transparent way to the programmer and without adding any complexity to the application development. The security functionalities added to the web applications are these: Integrity, Confidentiality and Generic Editable Data Validations. [Less]

JBoss Negotiation is a valve and login module to add SPNEGO negotiation to web applications deployed to JBossAS.

Current StatusThe first drop (0.0.14) has been delivered, it is a public beta version. Please go to Downloads pages to get it and have a try! Next step, I will write a pluggable XACML policy editor. If you have any ideas about it, please send an ... [More] email to me, thanks. Project OverviewEnterprise Java XACML is intent to fully implement OASIS XACML 2.0 (I will support XACML 3.0 in the future), and provide a high performance and good usability that can be used in enterprise environment. Note, this is a totally independent implementation. It does NOT rely on Sun's XACML implementation or any other implementations. FeaturesFully implemented XACML 2.0 core standard, passed all conformance tests. Provided PDP that can accept XACML requests and return XACML responses. Highly effective target in [Less]

The Sulawesi Software Collective have no illusions about making lots of money, attracting hordes of code-groupies, or saving the world. We don't even think we are all that clever. But coding can be fun, and we aim to have fun. All software you may find in this project is subject to the Apache License, Version 2.